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ABSTRACT: 

A time notarization apparatus and method is disclosed which uses a secure, microprocessor 
based hardware platform which performs public kay cryptographic operations to obtain trusted 
time stamping with a minimum of intervention by third parties. The hardware platform is 
encapsulated in a secure fashion so that the device's timestamping mechanism may not be 
readily tampered with or attered. The hardware platform includes at least one digital clock (4) and 
a stable, secure storage device (8) to record the private half of a public/private key pair. Coupled 
to both the digital clock (4) and the storage device (8) is a data processing device (6) which 
performs public key signature operations in a secure and tamper-proof manner. Only the 
processing device (6) has access to the secure storage device (8) and its associated private key. 
The hardware platform also includes input/output means which receives a digital message which 
is to be digitally signed and timestamped and which outputs the resulting timestamped signature 
generated by the device. The hadware platform also includes a power source (12), (e.g., an 
on-board battery) to ensure the accuracy of the device's digital clock (4) and the security of 
storage data prior to installation or in case of a power failure. 
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© Public/key date-time notary facility. 



© A time notarization apparatus and method is 
disclosed which uses a secure, microprocessor 
based hardware platform which performs public kay 
cryptographic operations to obtain trusted time 
stamping with a minimum of intervention by third 
parties. The hardware platform is encapsulated in a 
secure fashion so that the device's timestamping 
mechanism may not be readily tampered with or 
altered. The hardware platform includes at least one 
digital clock (4) and a stable, secure storage device 
(8) to record the private half of a public/private key 
pair. Coupled to both the digital clock (4) and the 
storage device (8) is a data processing device (6) 
which performs public key signature operations in a 



secure and tamper-proof manner. Only the process- 
ing device (6) has access to the secure storage 
device (8) and its associated private key. The hard- 
ware platform also includes input/output means 
which receives a digital message which is to be 
digitally signed and timestamped and which outputs 
the resulting timestamped signature generated by 
the device. The hadware platform also includes a 
power source (12), (e.g., an on-board battery) to 
ensure the accuracy of the device's digital clock (4) 
and the security of storage data prior to installation 
or in case of a power failure. 



CM 
< 

in 

CM 

cm 



CL 
LU 



CLOCK 
MOOULE 



I 



+v 



PROCESSOR 



1 



— — ti POWER 
L2 "T SOURCE 



FK3.I 



10 



RANDOM 

VALUE 

GENERATOR 



8 



SECRET 

PRIVATE 

KEY 

STORE 



Y 



Xerox Copy Centre 



EP 0 422 757 A2 



PUBLIC/KEY DATE-TIME NOTARY FACILITY 



FIELD OF THE INVENTION 



This invention generally relates to an apparatus 
and method for digitally time stamping digital docu- 
ments which are going to be electronically trans- 
ferred. More particularly, the invention relates to a 
method and apparatus for serving as a public key 
date-time notary facility. 



BACKGROUND AND SUMMARY OF THE INVEN- 

TION 



The rapid growth of electronic mail systems, 
electronic fund transfer systems, electronic docu- 
ment transfer systems and the like has increased 
concerns over the security of the data transferred 
over unsecured communication channels. Crypto- 
graphic systems are widely used to ensure the 
privacy and authenticity of messages communi- 
cated over such unsecured channels. 

Now that information and documents are being 
created, transferred and stored digitally, new re- 
quirements now exist for authentication and au- 
thorization of such information and documents. 

Unlike paper media, digital originals are able to 
be readily altered. Furthermore, there is no prima 
facia method for estimating the age or authenticity 
of digital information - unlike physical written 
specimens where age and behavior of chemicals 
and handwriting provides some means for estimat- 
ing authenticity and age. 

The advent of public key algorithms now allow 
for a means of digital authentication. These sys- 
tems range from basic signature systems, such as 
afforded by the straightforward use of, for example, 
the RSA Cryptosystem described by patent 
4,450,829 to more complex authorization systems 
such as described by the applicant's patent 
4,868,877, which allows for interlocking protection 
of coordinated signatures. 

Typically in digital signatures, an individual's 
certification (his authorization to use his public key) 
is inherently bounded by an expiration date. There 
are many reasons for such a bound. One of these 
stems from the fact that in any such system there 
is a need to be able to receive and retain cancella- 
tion notices for public keys which have been 
(accidentally) exposed, or whose owners have been 
prematurely deprived of authorization. In general, 
such cancellation notices need to be kept by all 
parties at least until the certificate's prima facia 
expiration. If expiration dates were not specified, 



such notices would have to be retained forever. 

If a culprit wishes to circumvent their expiration 
date, he might, in some cases, simply set back the 
clock in their computer and perform their signature 

5 at an apparently past time. 

Also, there are many situations (especially now 
that an ever increasing amount of business is done 
electronically) where it is useful or sometimes criti- 
cally important to ensure that the time and/or date 

w associated with a particular event is in fact correct. 
For example, the date of an invention disclosure 
document can make the difference between an 
inventor securing a valuable proprietary interest in 
his invention or acquiring no such interest. In a 

is business transaction, it may be important to ensure 
that the time reported as being associated with a 
contract or a purchase order is, in fact, correct. In 
either example, if it were possible for a user to 
create a back dated signature, the user could cre- 

20 ate a document which misrepresents itself 
chronologically. 

One way to resolve this problem is to have all 
critical documents signed and time stamped by an 
impartial third party "digital notary" service. It may 

25 be difficult to find such a third party; or it may be 
difficult to obtain the services in a timely manner. 
For isolated users, such a digital notary might not 
be readily available. Moreover, this process may 
become error-prone, tedious, and a source of bot- 

30 tlenecks, while also creating potential security 
breaches. 

The present invention is directed to an appara- 
tus and method for performing a time notarization 
in a secure way, while eliminating the above-men- 

35 tioned "digital notary" accessibility problems, 
thereby making such notarization easy for any in- 
dividual or corporation to utilize. Moreover, the 
present invention performs the time notarization so 
as to make it easy for anyone to verify the notariza- 

40 tion and to rely on the notarization time stamp. The 
apparatus is economical, and can be used locally 
without regard to using any external services. 

The present invention provides a means where- 
by any digital information can be effectively nota- 

45 rized to have been in existence at the time explic- 
itly stated in the notarization. This eliminates the 
possibly of electronic backdating through any sub- 
terfuge. 

The time notarization apparatus and method of 
so the present invention uses a secure, microproces- 
sor based hardware platform which performs public 
key cryptographic operations to obtain trusted time 
stamping with a minimum of intervention by third 
parties. The hardware platform is encapsulated in a 
secure fashion so that the device's timestamping 
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mechanism may not be feasibly subverted with or 
altered. 

The hardware platform includes at least one 
digital clock and a stable, secure storage device to 
record the private half of a public/private key pair. 
Coupled to both the digital clock and the storage 
device is a data processing device which performs 
public key signature operations in a secure and 
tamper-proof manner. Only the processing device 
has access to the secure storage device and its 
associated private key. 

The hardware platform also includes 
input/output means which receives a digital mes- 
sage which is to be digitally signed and timestam- 
ped. The input/output means may return the result- 
ing timestamped signature generated by the device 
to the presenter of the document or store the 
digital timestamp or dispose of it in any other 
appropriate means. The hardware platform also in- 
cludes a power source, (e.g., an on-board battery) 
to ensure the accuracy of the device's digital clock 
and the security of stored data continuously during 
all times during device's useful life. 

BRIEF DESCRIPTION OF THE DRAWINGS 



These as well as other objects and advantages 
of this invention will be better appreciated by read- 
ing the following detailed description of the pres- 
ently preferred exemplary embodiments taken in 
conjunction with the accompanying drawings of 
which: 

FIGURE 1 is a block diagram of a public key 
date/time notary device in accordance wfth an 
exemplary embodiment of the present invention; 
FIGURE 2 is a block diagram showing the de- 
vice of Figure 1 in conjunction with a document 
input and various outputs which indicates how 
the time stamp is created; 
FIGURE 3 is a flow diagram showing an exem- 
plary method for loading and initializing the de- 
vice of Figure 1; 

FIGURE 4 is a flow diagram showing how the 
time stamp is verified; 

FIGURE 5 is a block diagram showing an exem- 
plary digital clock module; and 
FIGURE 6 is a flowchart generally showing the 
sequence of operations performed by the device 
in Figure 1 in performing the public key signa- 
ture operation. 

DETAILED DESCRIPTION OF THE DRAWINGS 



Figure 1 is a block diagram of a date/time 



notary device 1 in accordance with an exemplary 
embodiment of the present invention. Stated brief- 
ly, the device 1 includes a clock module 4, which is 
coupled to processor 6. Processor 6 is also coup- 

5 led to a storage device 8 and a random number 
generator 10. Each of these components and an 
on-board power source 12 are mounted on a print- 
ed circuit or computer board 2. The circuit board 2 
and the components mounted thereon are pack- 

70 aged in a secure fashion so that the contents of 
storage device 8 cannot be externally accessed or 
observed and so that the digital clock (or clocks) in 
clock module 4 cannot be readily tampered with or 
altered. 

75 One approach that may be utilized to render 
the device 1 effectively tamper-proof is to dispose 
epoxy over the components on the circuit board so 
that the component pins cannot be probed or tam- 
pered with without destruction. The components 

20 themselves may be designed to be sensitive to 
physical tampering so that, for example, numeric 
values associated with the general registers in pro- 
cessor 6 are modified in response to physical 
tampering. In this regard, processor 6 may have 

25 one or more of its input pins coupled to switches 
(not shown) embedded in the epoxy which encases 
it. Such a switch will close (or open) in response to 
tampering and, for example, generate a distinctive 
signal level on a processor input pin. Processor 6 

30 may then, for example, respond to the change of 
state of such an input pin to, in turn, modify or 
erase a predetermined value, including erasing the 
private key value stored in a processor register or 
to branch to an error routine to thereby prevent the 

35 public key date/time notary device from operating 
properly, or having the private key value discov- 
ered. 

Focussing in more detail on Figure 1, as in- 
dicated above, embedded in date/time notary de- 

40 vice 1 is a clock module 4. Clock module 4 may, 
for example, contain a commercially available digi- 
tal clock such as for example, Model No. 
MM5827BN. Clock module 4 generates a time 
stamp value V1 on its output lines 3 and 5. The 

45 time stamp value V1 may be the output of, as 
described above, a single digital clock. Alternative- 
ly, the value V1 may be an average of the outputs 
of two or more digital clocks. It also generates an 
error signal (not shown) when the clocks appear to 

so fail. 

Rgure 5 shows a block diagram of an exem- 
plary clock module having multiple digital clocks, 
e.g., 20, 22. The outputs of the digital clocks 20 
and 22 are coupled to an average value generating 
55 circuit 23 which averages the time stamp signals of 
clocks 20 and 22 and outputs the average time on 
output lines 3 and 5 as the clock module time 
stamp value V1 . 
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The outputs of digital clocks 20 and 22 are 
coupled to, for example, a subtractor 24 which 
generates a signal indicative of the difference be- 
tween the digital output of clocks 20 and 22. The 
difference between the outputs of clocks 20 and 22 5 
is then coupled to threshold detector 26. If, and 
only, if the difference between the clock signals 
exceeds a predetermined threshold, e.g., corre- 
sponding to a difference of greater than several 
milliseconds per day, threshold detector 26 gen- w 
erates an error signal, which is coupled via output 
line 3 to processor module 6. Processor module 6 
decodes the error signal and enters an error rou- 
tine which disables device 1 and erases the private 
key. is 

The use of multiple digital clocks 20 and 22 is 
desirable since the date/time notary device 1 is 
being relied on to generate an accurate time 
stamp. Since it is possible that a single digital 
clock may (over time) begin to operate in a defec- 20 
tive manner, the use of two (or more) digital clocks 
coupled, as described above, to a threshold detec- 
tor substantially enhances the likelihood that the 
clock module will generate an accurate time stamp. 
Additionally, the use of multiple digital clocks pro- 25 
vides a mechanism for detecting that some party is 
tampering with the clock module. In this regard, if 
the outputs of one of the digital clocks is disturbed, 
through the use of the threshold detector 26 , an 
error signal will likely be generated and the device 30 
1 will be thereafter disabled. The Subtractor, al- 
though shown in the "clock" module, may actually 
be performed by the Processor (6). The checking 
could be performed only when a document is pre- 
sented, or preferably, could be done continuously. 35 

Turning back to Figure 1 , processor module 6 
may, for example, be a commercially available 
microprocessor such as an intel-286 microproces- 
sor. The processor 6 may be any microprocessor 
which has sufficient independent computing power 40 
to perform or coordinate public signature oper- 
ations in a secure and tamper proof manner. 

Coupled to processor module 6 is storage de- 
vice 8 in which a secret private key of a 
public/private key pair is stored. It is important that 45 
the contents of storage device 8 be only accessible 
to processor module 6. Storage device 8 must be a 
stable, secure storage device such that users will 
be unable to determine the contents of the storage 
device i.e., the private key. Storage device 8 is so 
preferably a read only memory (ROM) which may 
also operate as a program memory for processor 
module 6. Storage device 8 may be embodied in 
processor module 6. Any detection of attempted 
tampering should cause this value to be destroyed. 55 

Date/time notary device notary 1 also includes 
a power source 12, which may be an on-board 
battery having a relatively long life, which supplies 



power to the components shown in Figure 1 , if the 
device 1 is operating in a stand alone fashion and 
when the device is not installed (e.g., during ship- 
ping). Alternatively, as will be explained further 
below, if the device 1 is operating in conjunction 
with, for example, an associated computer system, 
then the device 1 may be externally powered and 
power source 12 would serve as a battery back-up 
in case of a power failure. It also must serve to 
keep the system "alive" between when it is initial- 
ized (at the factory) and the time the user plugs in 
to an external power source. 

The exemplary date/lime notary device 1 also 
includes a random value generator 10 which is 
coupled to processor module 6. Random value 
generator 10 introduces a random value V3 which 
is utilized in the public key signature operation by 
processor module 6. Random value generator 10, 
introduces yet a further degree of cryptographic 
strength to the public key signature process by 
introducing a random input which is operated on. 
By including this random value in each signature, 
special values, which might give an opponent some 
unforeseen advantage in cracking the signature 
system, cannot be supplied by an opponent. Ran- 
dom value generator 10 may, for example, be 
comprised of a noise diode which generates un- 
predictable outputs that are used to generate a 
random number V3. Such random value generators 
are commercially available and may, for example, 
comprise Model No. 1N751. Random value 10 gen- 
erator may alternatively be implemented by, for 
example, a subroutine executed by processor mod- 
ule 6 which utilizes any reasonable random value 
or pseudo-random value generating algorithms (of 
which there are many which are known) to gen- 
erate values V3. The random generator is actually 
optional and only serves to increase the theoretical 
strength of the algorithm. 

Prior to describing the manner in which the 
date-time notary device 1 operates, the device 
input, output and the system in which the device 1 
will typically operate will be described in conjunc- 
tion with Figure 2. Device 1 is contemplated to be 
typically coupled to a processing system 14 which 
may, for example, be an IBM-PC or the like. The 
circuit board 2 is physically inserted into the PC so 
as to be coupled to one of the PC ports. In this 
regard, the circuit board 2 would be coupled to a 
PC port in the same fashion as, for example, a 
display interface card. The processing system 14 
may, in turn, be coupled to a telecommunications 
system via, for example, a telephone link so that it 
is able to receive digitally transmitted files, mes- 
sages, or documents. 

The PC, for example, upon receiving an elec- 
tronic document to be signed inputs a digital bit 
stream V2 to be notarized via its output line 15. 
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Thereafter, a notarization proof set packet including 
a notarized time stamp is returned to the party 
originally transmitting the electronic document to 
be signed. Processing system 14, of course, need 
not be a PC, but rather may be a larger mainframe 
computer, a network of devices comprising a tele- 
communication system, etc. 

The input value V2 to be signed and time 
notarized may be any digital value, including, for 
example, a digital document which may in actuality 
represent a purchase order, a contract, an au- 
thorization to perform a particular act on behalf of 
the originator of the document, or any other type of 
document where it is important to prove that the 
document existed as of a predetermined time. The 
date/time notary device 1 generates a notarized 
time stamp which may be utilized to prove that the 
document was not created at a point in time after 
the time indicated on the document. The input V2 
may also itself be a user's digital signature of yet 
another digital value. The device may also create a 
hash of the input V2, and embed the hash in the 
signature rather than the entire input V2. 

In an exemplary embodiment of the present 
invention, the notarization proof set packet includes 
four values which are returned to the party trans- 
mitting the original digital document to be date/time 
notarized. In this regard, as shown in Figure 2, the 
digital document or input value to be notarized, V2, 
is returned to the document originator. Additionally, 
the time stamp value V1 , which is the time output 
of the clock module 4 is returned to the document 
originator and a notarized time stamp S is also 
returned. The time stamp value V1 reflects the 
most accurate time which clock module 4 is ca- 
pable of generating. Time stamp value V1 , as pre- 
viously explained will only be generated if the 
multiple clocks in module 4 are within a predeter- 
mined threshold of being in complete synchroniza- 
tion. It is noted that the output of each of the digital 
clocks in clock module 4 could each be transmitted 
if desired. In some cases, with some signature 
systems, including RSA, it might be possible to 
only retain the "S" value, since the V1 value can 
be extracted therefrom. On the other hand, it may 
be necessary to retain V3 as well as V1. 

The general sequence of operations performed 
by processor 6 is shown in the flowchart of Rgure 
6. In brief, the processor 6 inputs and temporarily 
stores each of the values V1, V2 ( and V3 and the 
secret key residing in storage device 8 in, for 
example, its working RAM (not shown). The pro- 
cessor 6 obtains the input value V2, which is the 
document to be notarized, via receiving input line 
15 and combines this value with the time stamp V1 
received via line 3 and the random value generated 
by module 10 using a public/key cryptographic 
signature operation. In this regard, the combination 



of values V1, V2 and V3 are processed by module 
6 using the secret private key stored in storage 
device 8. The signature process may, for example, 
be performed using the RSA digital signature tech- 

5 nique taught in U.S. Patent 4,405,829. 

By way of example only, as shown in Rgure 6, 
assuming a 512 bit (64 byte) RSA signature is 
utilized, V2 is input and it, or it's hash are tem- 
porarily stored as the lower order 16 bytes of the 

w 64 bytes of data which represent the input docu- 
ment which is to be notarized V2 (100). There are 
many well known hashing schemes which can be 
used in conjunction with signature systems. An- 
other eight bytes of the 64 byte value is utilized to 

75 store V1 the output of the clock module 4 which is 
input via line 3 and temporarily stored (102). The 
remaining 40 bytes in the value may consist of 
random bits which are constructed from the input 
received from the random number generator 10 

20 (104). This 64 byte number is then exponentiated 
with, for example, a RSA private key stored in 
storage device 8 in accordance with the teachings 
of U.S. Patent 4,405,829 (106). This yields the 
digital signature. After processing the 64 bytes of 

25 data with the stored private key, an output signa- 
ture value is stored (108) and output (110) which is 
identified in Rgure 2 as being the notarized time 
stamp S. There are may ways in which the input 
V2 and the time stamp could be combined in 

30 preparation for signing. 

The final value which is included in the nota- 
rized time stamp proof set (V2, V1, S, C), which is 
transmitted to the party whose document is beings 
date/time notarized, is the manufacturer's certifica- 

35 tion C. Turning back to Rgure 2, the manufacturer 
referred to therein is the manufacturer of the 
date/time notary device 1 . The manufacturer's cer- 
tification C will have embodied within it the public 
key 16 which is associated with the device's pri- 

40 vate key as well as the manufacturer's public key 
17 and will include the digital signature of the 
device's public key by the trusted manufacturer. 

Further details regarding the nature of a poten- 
tially multi-level digital certificate and an exemplary 

45 digital certificate is found in the applicant's U.S. 
Patent 4,868,877, which issued September 19, 
1989 and is entitled "Public Key/Signature Cryp- 
tosystem With Enhanced Digital Certification", 
which is incorporated by reference herein. As de- 

50 scribed in detail in the applicant's patent, the de- 
vice's public key may, if desired, be certified in 
such a way as to identify the authority of its cre- 
ator. The certification process involves signing this 
new public key with a private key of the trusted 

55 manufacturer and if desired, expressly indicating 
the authority which has been granted by the signor 
(i.e., authorization to be a trusted time-notary). 
Such trust may be implicit simply because of the 
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manufacturer's well recognized public key which is 
used for the signature. In this regard, the trusted 
authority (i.e., the manufacturer) is contemplated as 
having a well-publicized public key, which is known 
and accepted by all potential users of the device. 5 
Such a manufacturer may simply use its private 
key portion to sign the device's newly created 
public key. Alternatively as described in the ap- 
plicant's patent, the delegated authority as a trust- 
ed time-notary might be controlled by a hierarchy w 
of certificates or the manufacturer's signature might 
indicate co-signing necessary by one or more other 
witnesses to reduce the risk of corruption by a 
single manufacturer's representative or by any sin- 
gle party. In such a case, the device's certification 15 
will need to include information regarding all of 
these signatures. Alternatively, patent 4,405,829 
could be applied directly to yield a simple, one- 
level certificate which would be validated simply 
through widespread acceptanc and knowledge of 20 
the manufacturer's public key. 

In practice, the end user receives the device 1 
together with a copy (on a floppy disk) of the 
public key corresponding to the secret private key 
embedded in the device, the manufacturers' cer- 25 
tification of this public key and a program which 
can be used to feed any input to the device 1 and 
deliver corresponding output from the device. 

The time stamped notarized signature S 
(together with items V1, V2 and C) then serves as 30 
a notarized record showing that whatever object 
that was signed did exist at the specified moment 
(and was in the proximity of a particular signing 
device 1). Generally, the device's output signature 
and time stamp value V1 would be typically ac- 35 
companied by the device's associated public key 
and the manufacturer's certification of the device's 
public key, and the manufacturer's public key(s), 
so that all of these together act as a proof set for 
the notarization. The notarized time stamp may 40 
then be transmitted and/or stored with the object 
for later proof that the object existed at the speci- 
fied moment. It is noted that, in a special case, 
when the object being notarized is actually itself a 
digital signature by some other party of some third 45 
object (e.g., a document, purchase order, etc.), the 
notarization of such a signature essentially vouches 
that the signing party did in fact create said signa- 
ture on or before the specified time. This provides 
a very clear analog to the standard functions per- 50 
formed by a conventional notary public service. 

The manner in which the device 1 is loaded is 
exemplified by the flowchart shown in Figure 3. It is 
contemplated that the device 1 will be initially 
loaded during the manufacturing process. The 55 
loading may occur by coupling the device 1 via its 
input port 15 (see Figure 2) to a loading processor 
(not shown) at the manufacturing plant. 
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As indicated by the flowchart shown in Figure 
3, the device 1 upon being powered on (30) imme- 
diately branches to an initialization mode routine 
(32). In the initialization mode, the device 1 enters 
a loading state in which the clock module 4 is 
initially set (32). Clock module 4 is set based on a 
universally recognized standard time to accurately 
initialize the digital clocks and initiate them to begin 
operation. Thereafter, the processor module 6 inter- 
nally generates a public key/private key pair using 
random values which are generated by the proces- 
sor 6 (or are received from the manufacturer during 
the device's initialization) in a manner consistent 
with any public key signature method, such as e.g., 
described in the teachings of the RSA public key 
cryptography (see U.S. Patent No. 4.405,829 or 
4,868,877) (36). Thereafter, the private key portion 
is loaded into storage device 8 (38). After the 
private key portion has been stored, an "initialized 
flag" is set (39) indicating that the device initializa- 
tion has been completed which insures that the 
processor 6 cannot be initialized again. 

As indicated in step 40, the processor module 
6 then transmits the public key which it generated 
in step 36 to the initializing processor device. It is 
noted, however, that the private key portion of the 
public/private key pair is not transmitted to the 
initializing processor so even the initializing proces- 
sor is not aware of the secret private key. There- 
after, a digital signature operation is performed on 
the transmitted public key (42) using the private 
key of a trusted authority, e.g., the manufacturer. 
The initializing processor may perform the signa- 
ture operation (42) to generate a digital signature 
for the device 1. Thus, the manufacturer signs the 
generated device public key and in so doing veri- 
fies, by creating a digital certificate for the device 
(which may be stored in the device itself or on a 
floppy disk separate from the device), that the 
time/data notary device 5 is bonafide and trust- 
worthy. In this regard, the signature process in- 
dicates that the signing party has verified that the 
clocks were initialized to the correct time (44). 
Furthermore, associated with the certificate for the 
device is the manufacturer's public key which will 
be utilized by the party receiving the date time 
notarized document to assure that the date/time 
stamp is authentic. 

tf desired, rather than the public/private key 
pair being generated by the processor module 6, 
the public/private key pair may be generated by 
the initialization processor. In this fashion, the pro- 
cessor module 6 need not have the capability of 
generating its own public/private key pair, thereby 
saving on program storage. Thus, an alternative 
method for initializing device 1 is to initialize the 
clock values that are used such as in step 34 
shown in Figure 3, but rather than having the 
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processor module 6 generate the public/private key 
pair, such a pair would be loaded by the initializa- 
tion processor. The initialization processor would 
then erase its copy of the private part of the key 
pair immediately after it is generated. Thereafter, 
the initialization process would proceed as pre- 
viously described in conjunction with Figure 3. 

The recipient of a date/time notarized docu- 
ment, after electronically receiving and storing the 
document would then verify the time stamp in 
accordance with the flowchart shown in Figure 4. 
By so verifying the time stamp, the user can prove 
that the document was created no later than the 
date and time indicated. The digital time stamp on 
the received document includes an input value that 
has been notarized V2 (50), a time stamp V1 (52), 
a notarized time stamp S (54) and a manufacturer's 
certification C (66. 68, 70). It is noted that the 
notarized time stamp S (54) has embedded within 
it the values V1, V2, and V3 as described above in 
conjunction with Figures 2 and 6. The manufac- 
turer's certificate C and the notarized time stamp S 
are processed via a public key operation (56) 
thereby resulting a 16-byte value X2, an 8-byte 
value X1 and a 40 byte random value X3. The 
values X1, X2, and X3 should be equal to values 
V1, V2, and V3 (which have been described above 
in conjunction with Figure 2) if the time stamp was 
properly notarized. The exact steps shown for 
veryifying the various values are sutiable for the 
RSA algorithm. Another sequence of steps may be 
necessary for other public key algorithms. It should 
be noted that some public key systems would also 
need to know the "random" value V3. 

X1 is then compared with V1 as indicated at 
block 58 and if the results are not equal, then the 
time stamp must be rejected. tf the results of X1 is 
equal to V1 as determined at block 58, then a 
comparison is made in block 60 between X2 and 
the input value that has been notarized V2 and if 
the results are not equal the time stamp is rejected 
(64). 

If the results of the comparison in block 60 
indicate that X2 equal V2, then one of the criteria is 
met for determining that the input value has been 
deliberately created prior to the time indicated by 
V1 (82). It is noted that the random value X3 could 
be compared with the generated random value V3, 
if desired, but for purposes of simplicity, such a 
comparison is not shown in Rgure 4. 

A check of the device's public key is also 
made in Rgure 4. In this regard, from the manufac- 
turer's certificate, the signature of the device's pub- 
lic key, which has been made by the manufacturer 
(70) and the manufacturer's trusted public key (68) 
are processed via a public key operation (72). The 
output of the public key operation should validate 
the public key associated with the device (66). A 



comparison is made which compares the device's 
public key with the output of the public key opera- 
tion (74). If there is not a match as indicated at 
block 74, then the time stamp is rejected because 

5 the public key that performed the notarization is not 
known to be trustworthy (80). If the check at blocks 
74 and 76 indicate that there is a match, then it is 
verified that the public key did belong to a device 
created by the manufacturer. Given the confirma- 

?o tion that the device was created by the manufac- 
turer and that the time stamp was created by the 
device's public key, then the user can accept that 
the document was created prior to the time/date 
indicated by time stamp V1 (82). 

75 While the invention has been described in con- 
nection with what is presently considered to be the 
most practical and preferred embodiment, it is to 
be understood that the invention is not to be limited 
to the disclosed embodiment, but on the contrary, 

20 is intended to cover various modifications and 
equivalent arrangements included within the spirit 
and scope of the appended claims. 

25 Claims 

1 . A digital time notarization device comprising: 

platform means for supporting components; 

clock means, supported by said platform means, 

30 for generating clock signals indicative of time; and 
processor means, supported by said platform 
means, for operating on said clock signals and an 
input value using a cryptographic key and for gen?. : 
erating a notarized time stamp. 

35 2. A device according to claim 1, further compris- 
ing random number generator means, coupled to 
said processor means for generating a relatively 
unpredictable output value, said processor means 
creating said notarized time stamp using said un- 

40 predictable output value. 

3. A device according to claim 2, wherein said 
random number generator means includes a noise 
generating diode. 

4. A device according to claim 2, wherein said 
45 random number generator means comprises a ran- 
dom number generating subroutine executed by 
said processor means. 

5. A device according to claim 1, wherein said 
clock means includes a plurality of digital clocks. 

so 6. A device according to claim 5, further including 
averaging means coupled to receive the outputs of 
said plurality of digital clocks for generating a time 
output signal which is the average of the outputs of 
said plurality of digital clocks. 

55 7. A device according to claim 5, further including 
threshold detecting means for generating an error 
signal if the difference between the outputs of said 
plurality of clocks exceeds a predetermined thresh- 
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old. 

8. A device according to claim 1. further including 
means for rendering said device effectively tamper- 
proof. 

9. A device according to claim 8, further including 5 
means for encapsulating said clock means and 
said processor means on said platforms means 
such that said clock means and said processor 
means can not be readily tampered with. 

10. A device according to claim 8, further including w 
switch means coupled to said processor means, 

said processor means including means responsive 
to a change of state of said switch means for 
preventing said device from operating properly. 

11. A device according to claim 1, wherein said 15 
processor means comprises computational means 

for performing a public key digital signature opera- 
tion on said input value and said clock signals . 

12. A device according to claim 1, further including 
storage means, disposed on said platform means, 20 
and coupled to said processor means, for storing a 
secret private key of a public key/private key pair. 

13. A device according to claim 1, further including 
power supply means, disposed on said platform 
means for supplying power to components dis- 25 
posed on said platform means. 

14. A device according to claim 1, wherein said 
input value represents at least one digital message 
and further including input means coupled to said 
processor means, for receiving said input value, 30 
and for supplying said input value to said proces- 
sor means, whereby said device may be coupled 

to a communications system for receiving a digital 
message to be time stamped and for transmitting a 
time/stamp notarized digital document to said com- as 
munications system. 

15. A device according to claim 1, wherein said 
processor means includes means for generating a 
public key/private key pair. 

16. A device according to claim 1, wherein said 40 
processor means includes flag means for storing 

an indication that the notarization initialization has 
been completed. 



8 



EP 0 422 757 A2 



A 



FIG. 5 



CLOCK 
MODULE 



+V 



1 , POWER 

12 "T SOURCE 



% h k k 



PROCESSOR 



FIG. I 



10 

4— 



RANDOM 
VALUE 

GEN ORATOR 



8 



SECRET 
PRIVATE 
KEY 
STORE 



23 



20 

4- 



DI6. 
CLOCK 



AVERAGE 

VALUE 

GENERATOR 



r 



22 

4- 



DIG. 
CLOCK 



f 



ERROR 



• 24 



SUBTRACT OR 



i 



THRESHOLD 
DETECTOR 



7f 



26 



9 



EP 0 422 757 A2 




r 



CLOCK 
MODULE 



v 2 



INPUT 
VALUE 

TO BE 
NOTARIZED 




POWER 
SOURCE 



RANDOM 

VALUE 

GENERATOR 



PROCESSOR 



TIME 
STAMP 
VALUE 



v l 





SECRET 




PRIVATE 




KEY* 




STORE 



NOTARIZED 
TIME STAMP 



PUBUC KEY* 
OF DEVICE'S 

PRIVATE KEY 



CERTIFICATE 

SIGNATURE OF 
DEVICE'S PUBUC 
KEY BY TRUSTED 
MANUFACTURER 



MANUFACTURER'S 
PUBLIC KEY 



MANUFACTURER'S 
CERTIFICATION 



FIG. 2 



10 



EP 0 422 757 A2 



C 



POWER 
UP 



30 



32 



ENTER 
INITIALI ZATION 
MODE 



I 



34 

2^ 



INITIALIZE 
CLOCK 

VALUES 



I 



5? 



GENERATE 

PUBLIC/ 

PRIVATE 

KEY PAIR 



I 



36 



LOAD PRIVATE 
KEY IN 
STORE 



A 



39 



SET 
INITIALIZED 
FLAG 



I 



40 



TRANSMIT 

PUBLIC 

KEY 



I 



42 



manufacturer's 
signature 

(private key) 
operation 



46 



CERTIFICATE 
FOR 
DEVICE 



FIG. 3 



1 



TRUSTED WITNESS 
•VARIFIES CLOCK 

INITIALIZATION 
'SIGNS KEY 



11 



EP 0 422 757 A2 



o 

LU 



CO 

a: 

UJ 

£2 





SIGNATURE 
OF DEVICE 
PUBLIC KEY 
BY MANUF. 


PUBLIC KEY 
ASSOC. WITH 
DEVICE 





o 



CM 



cl* o 



.a 





Q 3° 

UI * 
N 




i 




NOTAR! 

TIME 

STAMP 




PUBLIC 

KEY 

OPERA 



X 



CM 
X 



CM 


* 





























o 
to 



Ui 


















<UlH 


a» 
Z 






12 



EP 0 422 757 A2 



INPUT AND 
TEMPORARILY 
STORE V 2 AS LOWER 

ORDER 16 BYTES 
OF 64 BYTES WORD 



I 



INPUT AND 
TEMPORARILY 
STORE Vj AND NEXT 
HIGHER ORDER 6 
BYTES 



I 



INPUT AND 
TEMPORARILY 
STORE V 3 AND 

CONSTRUCT 40 BYTES 
OF RANDOM DATA 



I 



EXPONENTIATE 
64 BYTE NUMBER 
WITH PRIVATE KEY 



i 



STORE RESULT 
AS NOTARIZED 
TIME STAMPS 



1 



OUTPUT VALUE S 
AND V, TO BE 

INCORPORATED IN 
NOTARIZED TIME 
STAMP PACKET 

v 2, V|, S,C 



FIG. 6 

13 



